Vulnerabilities > Jupiter CMS > Jupiter CMS > 1.1.4
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2006-04-29 | CVE-2006-2105 | Local File Include vulnerability in Jupiter CMS 1.1.4/1.1.5 Directory traversal vulnerability in index.php in Jupiter CMS 1.1.4 and 1.1.5 allows remote attackers to read arbitrary files via ".." sequences terminated by a %00 (null) character in the n parameter. | 5.0 |
2006-03-14 | CVE-2006-1223 | HTML Injection vulnerability in Jupiter CMS Jupiter CMS 1.1.4 Cross-site scripting (XSS) vulnerability in Jupiter Content Manager 1.1.5 and earlier allows remote attackers to inject arbitrary web script or HTML via a Javascript URI in the image BBcode tag. network jupiter-cms | 4.3 |